Hot Topics

MOVEit Transfer

Lace Tempest Exploits SysAid Zero-Day Flaw

| | clop-ransomware, CVE-2023-47246, Cybersecurity News, DEV-0950, Lace Tempest, Microsoft, MOVEit Transfer, Path traversal vulnerability, powershell, security update, SysAid, Tomcat web service, WebShell, zero-day flaw
In a recent revelation, SysAid, a leading IT management software provider, has unveiled a critical security threat affecting its on-premises software. The threat actor, identified as DEV-0950 or Lace Tempest by Microsoft, ...
TuxCare
Mark Quashie, a/k/a The Mad Stuntman

CISA Warning: MOVEit Has Yet Another Zero-Day SQL Injection RCE Bug [updated]

| | CL0P, Cl0p Ransomware, clop, clop-ransomware, CVE-2023-34362, CVE-2023-35036, CVE-2023-35708, MOVEit Cloud, MOVEit Transfer, MOVEit Transfer Zero Day, Progress Software, Ransomware, SB Blogwatch, sql injection, SQL injection attack, SQL injection attacks, sql injection prevention, SQL Injection Vulnerabilities, SQL injections
Once is happenstance. Twice is coincidence. Three times is sheer incompetence ...
Security Boulevard
CISA Order Highlights Persistent Risk at Network Edge

CISA Order Highlights Persistent Risk at Network Edge

| | Adam Boileau, Barracuda Networks, cisa, CVE-2023-27997, Cybersecurity and Infrastructure Security Agency, Fortinet, Fortra, GoAnywhere, Latest Warnings, Mandiant, MOVEit Transfer, Patrick Gray, Progress Software, risky-business-podcast, The Coming Storm, Time to Patch
The U.S. government agency in charge of improving the nation's cybersecurity posture is ordering all federal civilian agencies to take new measures to restrict access to Internet-exposed networking equipment. The directive comes ...
Krebs on Security

MOVEit! An Overview of CVE-2023-34362

| | Attack Surface Management, Labs, MOVEit Transfer, Vulnerability Research
On May 31st, 2023, Progress disclosed a serious vulnerability in its MOVEit Transfer software. The vulnerability is remotely exploitable, does not require authentication, and impacts versions of the software that are 2023.0.1 ...
Blog - Praetorian